🔧 [#1155] -- ensure the X-Session-Expires-In is exposed to CORS requests

The SDK (in embedded formmust be able to read this response header.
open-formulieren · Jan 6, 2022 · ca18e6c · ca18e6c
1 parent ea0f0ec
commit ca18e6c
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/src/openforms/conf/base.py b/src/openforms/conf/base.py
@@ -631,7 +631,7 @@
 CORS_ALLOW_HEADERS = list(default_cors_headers) + config(
     "CORS_EXTRA_ALLOW_HEADERS", split=True, default=[]
 )
-CORS_EXPOSE_HEADERS = []
+CORS_EXPOSE_HEADERS = ["X-Session-Expires-In"]
 CORS_ALLOW_CREDENTIALS = True  # required to send cross domain cookies
 
 #